Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eBeZoKHwjnm_9lQeIQ5uc6SreLU.roa
File: eBeZoKHwjnm_9lQeIQ5uc6SreLU.roa (raw, json)
Hash identifier: L7aJgWYXK6lMP6+V/O8TLSX8nM+OFpnApwTISvm8Ou8=
Subject key identifier: 78:17:99:A0:A1:F0:8E:79:BF:F6:54:1E:21:0E:6E:73:A4:AB:78:B5
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01933A3FA7516603518D659CDB004F2990EF
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eBeZoKHwjnm_9lQeIQ5uc6SreLU.roa
Signing time: Sun 17 Nov 2024 13:11:10 +0000
ROA not before: Sun 17 Nov 2024 13:11:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63902
IP address blocks: 82.153.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 13:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3a:3f:a7:51:66:03:51:8d:65:9c:db:00:4f:29:90:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Nov 17 13:11:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=781799a0a1f08e79bff6541e210e6e73a4ab78b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5e:b7:d5:51:83:b7:9e:98:43:d1:dc:47:ae:
71:6c:0b:35:84:53:d0:da:7c:f5:e4:42:da:60:f9:
e0:59:b2:56:a9:96:b8:eb:77:58:02:51:5b:10:7d:
10:b8:16:92:98:ee:2c:1e:49:7e:07:0d:91:9b:a5:
27:3f:e1:1d:55:ae:1f:71:3d:06:71:42:26:67:fd:
4c:5c:4e:00:ec:26:c0:b9:62:c8:b3:14:c9:46:5d:
49:bb:bc:bd:b6:98:dc:31:59:aa:71:ca:18:75:81:
7f:00:2e:e6:a6:71:91:1f:60:e9:94:b6:8d:7a:f3:
5a:9b:47:05:61:17:21:cc:7b:30:98:8e:e7:d6:f2:
46:73:14:27:f0:4e:83:72:16:c2:52:7d:fa:74:9d:
8c:c6:70:50:30:ed:bc:5e:38:0f:5a:f0:04:15:d2:
9c:c9:0b:f9:42:91:d6:27:70:14:e2:84:31:06:94:
5a:fb:04:0e:71:e1:a7:da:80:57:af:8d:86:c8:0e:
1c:3f:3e:22:2e:14:fe:90:9c:c2:f3:7d:69:45:b6:
60:fd:46:13:f6:48:41:5b:82:22:c7:9e:02:e3:73:
de:3a:f4:8e:84:32:55:4f:59:b0:fe:99:37:ac:6d:
50:b8:b9:c8:5f:71:d4:a5:d2:f9:fd:2f:e2:b7:c0:
5a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:17:99:A0:A1:F0:8E:79:BF:F6:54:1E:21:0E:6E:73:A4:AB:78:B5
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eBeZoKHwjnm_9lQeIQ5uc6SreLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.153.225.0/24
Signature Algorithm: sha256WithRSAEncryption
07:6d:d2:47:ac:12:23:8f:32:74:3f:7c:d3:e0:8c:12:e0:df:
55:d4:52:d9:c6:f6:c9:3f:c3:54:4b:72:33:60:84:d3:e7:b6:
8a:ff:74:ad:b6:bb:75:55:23:2c:b5:57:52:43:84:90:06:cc:
03:2e:21:73:3d:52:12:8a:3a:39:07:6c:d8:84:e1:b8:47:0e:
7b:91:e5:53:4b:77:3e:69:6f:63:32:99:c4:e4:c3:01:c8:77:
ec:01:f0:a5:27:6e:5c:1c:cd:0b:77:b8:b8:e7:1b:20:51:94:
c6:c2:54:1c:88:e3:3a:ea:f7:19:1f:31:89:b2:9c:53:53:d5:
38:1e:c0:e4:a0:19:29:1c:21:da:d9:87:ba:5e:6b:b3:b0:cc:
9c:fe:d3:aa:e9:07:38:76:df:fa:36:d3:0b:71:03:50:68:3b:
dc:db:88:1a:f3:c6:50:9f:a1:e7:b3:4b:b9:ce:7b:e8:4a:d0:
b0:91:c6:e6:8a:23:76:7b:f9:36:45:96:21:63:2e:ce:5f:7f:
da:9a:72:2a:c1:17:77:72:4a:71:c5:50:3d:96:01:99:00:82:
7a:ae:dd:44:9d:f8:ff:b8:30:6f:24:61:ef:ea:c0:ca:6a:19:
f4:dd:2c:79:18:01:f1:08:b9:98:75:d4:bc:7e:7f:6a:c0:cb:
dc:8b:b4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:05:39 2025 by rpki-client